Fixes: CVE-2023-1127, CVE-2023-1170, CVE-2023-1175, CVE-2023-1264, CVE-2023-1355 Signed-off-by: Randy MacLeod <Randy.MacLeod@...> --- meta/recipes-support/vim/vim.inc | 4 ++-- 1 file changed, 2 insert

Current Dev Position: YP 4.2 M4 Next Deadline: 3rd April 2023 YP 4.2 M4 Build Next Team Meetings: Bug Triage meeting Thursday March 30tjh7:30 am PDT (https://zoom.us/j/454367603?pwd=ZGxoa2ZXL3FkM3Y0bF

The following changes since commit 7df46e003ea76cf7d5b7263f23bd6e6a781bd22c: base-files: Drop localhost.localdomain from hosts file (2023-03-17 04:52:21 -1000) are available in the Git repository at:

Signed-off-by: Markus Volk <f_l_k@...> --- .../{epiphany_43.1.bb =3D> epiphany_44.0.bb} | 37 +++++++++++-------- 1 file changed, 22 insertions(+), 15 deletions(-) rename meta/recipes-gnome/epiphany/{e

From: Shubham Kulkarni <skulkarni@...> Disable cmd/internal/moddeps test, since this update includes PRIVATE track fixes. Backport from https://github.com/golang/go/commit/5c3e11bd0b5c0a86e5beffcd4339

Hello all, I'm finishing the new fetcher for cve check using the 2.0 NVD API. Will need testers to check as many configurations as possible before we switch the format. The current estimate is this we

From: Shubham Kulkarni <skulkarni@...> Disable cmd/internal/moddeps test, since this update includes PRIVATE track fixes. Backport from https://github.com/golang/go/commit/5c3e11bd0b5c0a86e5beffcd4339

Signed-off-by: Markus Volk <f_l_k@...> --- meta/conf/distro/include/maintainers.inc | 1 + .../libadwaita/libadwaita_1.3.1.bb | 24 +++++++++++++++++++ 2 files changed, 25 insertions(+) create mode 1006

From: Markus Volk <f_l_k@...> Signed-off-by: Markus Volk <f_l_k@...> --- ...esktop-schemas_43.0.bb =3D> gsettings-desktop-schemas_44.0.bb} | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) rename m

From: Markus Volk <f_l_k@...> Signed-off-by: Markus Volk <f_l_k@...> --- .../{epiphany_43.1.bb =3D> epiphany_44.0.bb} | 37 +++++++++++-------- 1 file changed, 22 insertions(+), 15 deletions(-) rename

From: Markus Volk <f_l_k@...> --- ...-info-don-t-assume-million-in-one-ev.patch | 50 ------------ ...build-do-not-use-can_run_host_binari.patch | 48 ------------ .../glib-2.0/glib-2.0/cpp-null.patch |

From: Markus Volk <f_l_k@...> Signed-off-by: Markus Volk <f_l_k@...> --- .../{glib-networking_2.74.0.bb =3D> glib-networking_2.76.0.bb} | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) rename meta

From: Markus Volk <f_l_k@...> - added PACKAGECONFIGs for av1 support, gamepad and sandboxing - cmake tries to find where bwrap and xdg-dbus-proxy are located on targe= t and reads the path from ${STAG

From: Markus Volk <f_l_k@...> Overview of Changes in 4.10.1, 14-03-2023 =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D *

Multiple CVE are patched in kernel but appears as active because the NVD database is not up to date In common file cve-extra-exclusion.inc, CVE are ignored if and only if all versions of kernel used b

Backport patch to fix CVE-2023-28531. Signed-off-by: Chen Qi <Qi.Chen@...> --- ...-destination-constraints-for-smartca.patch | 35 +++++++++++++++++++ .../openssh/openssh_8.9p1.bb | 1 + 2 files changed

- added PACKAGECONFIGs for av1 support, gamepad and sandboxing - cmake tries to find where bwrap and xdg-dbus-proxy are located on targe= t and reads the path from ${STAGING_BINDIR_NATIVE}. This break

- added PACKAGECONFIGs for av1 support, gamepad and sandboxing - cmake tries to find where bwrap and xdg-dbus-proxy are located on targe= t and reads the path from ${STAGING_BINDIR_NATIVE}. This break

When GI_DATA_ENABLED is 'False' (e.g. because 'gobject-introspection-data' is not in DISTRO_FEATURES), gobject-introspection, gobject-introspection-native and qemu-native should not be added to DEPEND

Upstream-Status: Backport from https://github.com/curl/curl/commit/119fb187192a9ea13dc90d9d20c215fc82799ab9 Signed-off-by: Hitendra Prajapati <hprajapati@...> --- .../curl/curl/CVE-2023-23916.patch |